Autolab@* Security Vulnerabilities and Issues — Autolab@* CVE List

Lucene search

AutolabprojectAutolab*

8 matches found

CVE•added 2022/04/11 7:15 a.m.•74 views

CVE-2022-0936

Cross-site Scripting (XSS) - Stored in GitHub repository autolab/autolab prior to 2.8.0.

7.6CVSS5.5AI score0.00185EPSS

CVE•added 2024/11/25 8:15 p.m.•53 views

CVE-2024-53258

Autolab is a course management service that enables auto-graded programming assignments. From Autolab versions v.3.0.0 onward students can download all assignments from another student, as long as they are logged in, using the download_all_submissions feature. This can allow for leakage of submissi...

7.1CVSS6.9AI score0.0007EPSS

CVE•added 2023/01/14 1:15 a.m.•51 views

CVE-2022-41956

Autolab is a course management service, initially developed by a team of students at Carnegie Mellon University, that enables instructors to offer autograded programming assignments to their students over the Web. A file disclosure vulnerability was discovered in Autolab's remote handin feature, wh...

6.5CVSS6.5AI score0.00252EPSS

CVE•added 2024/11/27 10:15 p.m.•37 views

CVE-2024-53260

Autolab is a course management service that enables auto-graded programming assignments. A user can modify their first and or last name to include a valid excel / spreadsheet formula. When an instructor downloads their course's roster and opens, this name will then be evaluated as a formula. This c...

6.8CVSS6.7AI score0.00197EPSS

CVE•added 2023/01/14 1:15 a.m.•36 views

CVE-2022-41955

Autolab is a course management service, initially developed by a team of students at Carnegie Mellon University, that enables instructors to offer autograded programming assignments to their students over the Web. A remote code execution vulnerability was discovered in Autolab's MOSS functionality,...

8.8CVSS9AI score0.02115EPSS

CVE•added 2023/05/26 11:15 p.m.•30 views

CVE-2023-32317

Autolab is a course management service that enables auto-graded programming assignments. A Tar slip vulnerability was found in the MOSS cheat checker functionality of Autolab. To exploit this vulnerability an authenticated attacker with instructor permissions needs to upload a specially crafted Tar...

7.2CVSS6.7AI score0.00345EPSS

CVE•added 2023/05/26 11:15 p.m.•29 views

CVE-2023-32676

Autolab is a course management service that enables auto-graded programming assignments. A Tar slip vulnerability was found in the Install assessment functionality of Autolab. To exploit this vulnerability an authenticated attacker with instructor permissions needs to upload a specially crafted Tar...

7.2CVSS6.6AI score0.00345EPSS

CVE•added 2024/01/22 3:15 p.m.•24 views

CVE-2023-44395

Autolab is a course management service that enables instructors to offer autograded programming assignments to their students over the Web. Path traversal vulnerabilities were discovered in Autolab's assessment functionality in versions of Autolab prior to 2.12.0, whereby instructors can perform ar...

6.5CVSS6.7AI score0.00184EPSS